CVE-2024-10492
2.7
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
Summary
A vulnerability was found in Keycloak. A user with high privileges could read sensitive information from a Vault file that is not within the expected context. This attacker must have previous high access to the Keycloak server in order to perform resource creation, for example, an LDAP provider configuration and set up a Vault read file, which will only inform whether that file exists or not.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
0 < 26.0.6 | affected | ||
| Red Hat | Red Hat build of Keycloak 24 | 24.0.9-1 < * | unaffected |
| Red Hat | Red Hat build of Keycloak 24 | 24-18 < * | unaffected |
| Red Hat | Red Hat build of Keycloak 24 | 24-18 < * | unaffected |
| Red Hat | Red Hat build of Keycloak 26.0 | 26.0.6-2 < * | unaffected |
| Red Hat | Red Hat build of Keycloak 26.0 | 26.0-5 < * | unaffected |
| Red Hat | Red Hat build of Keycloak 26.0 | 26.0-6 < * | unaffected |
Weaknesses
- CWE-73: External Control of File Name or Path
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://access.redhat.com/errata/RHSA-2024:10175
- https://access.redhat.com/errata/RHSA-2024:10176
- https://access.redhat.com/errata/RHSA-2024:10177
- https://access.redhat.com/errata/RHSA-2024:10178
- https://access.redhat.com/security/cve/CVE-2024-10492
- https://bugzilla.redhat.com/show_bug.cgi?id=2322447
- https://github.com/keycloak/keycloak/issues/35215
- https://github.com/keycloak/keycloak/pull/35223
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.